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Reachable Sets and Safety Certification 


Reachable sets with unit peak inputs 


Rr 2 {x(T) | ¥ = flx,u), x0) =0, |ul <1} (1) 


The set of points that can be reached from x(0) = 0 with inputs not 
exceeding unit magnitude. Difficult to find exactly, but methods exist 
to find overapproximations. 


ISS gives a very conservative bound: 


|x(T)| < pis. 7) +4 sup 1) < ¥(1). 
— ores 


A less conservative estimate with level sets: 


Find positive definite V(-) and a constant c > 0 such that 


jul <1 and V(x)>c => VV{(x)-f(x,u) <0 


A 


Then, the level set O, = {x : V(x) < c} contains the reachable set: 


RrCcO, Wr>0. 


Example: Linear system * = Ax + Bu. Use V(x) = x! Px. If there 
exists P = P? > 0 such that 


uiu<tandx’Px>1 => x'(ATP+PA)x+x'PBu+u'B' Px <0 


then the ellipsoid {x : x’ Px < 1} is an overapproximation of Rr. 


Rewrite the above implication as: 


Ee} [o S][E] =} 0F] [8 5 ][2] 129] 


T 
x A'P+PA PB er 
u BTp 0 we \e 


x 


Note that this statement is verified if we can find « > 0, 8B > 0 such 
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that, for all x and u, 


T 
x 
u 


A'P+PA PB x 
BTp 0 


ALTE 1D 


or, equivalently: 


T 
rs A™P+PA+aP PB x 
T <a—B 
u B’P —pI u 
This inequality holds for all x and u if and only if 
A’ P+ PASaP PB 
< 0 

BIp Bl | = (3) 
p-a < 0. (4) 


Let 6 = « which is the best choice to satisfy (3) without violating (4): 


(5) 


A'P+PA+aP PB 
<0. 
BTp —oI | — 


Summary: procedure to overapproximate the reachable set 


Look for P = P? > Oanda > 0 satisfying the matrix inequality 
(5). This in not a linear matrix inequality (LMI) in a and P, but it is 
an LMI in P if « is fixed. The resulting ellipsoid {x : x7?Px < 1} isa 
superset of Rr. 


Additional objectives can be incorporated, such as minimizing the 
volume of the ellipsoid, which is proportional to v det P~!: 


minimize log(det P~!) which is convex in P. 


S-procedure 


The principle used to obtain (2) is known as the S-procedure in con- 
trol theory. To show that: 


go(€¢) >0 whenever qj(¢)>0 i=1,2,...,p 


look for T%,T),..., Tp 20 such that 


P 
go(€) — )) ti4i(€) = 0. 
i=1 


In (2), g;(-), i = 0,1,2, are quadratic functions of ¢ = * | . 
u 
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Reachable sets with unit energy inputs 


Rr & {x(T) | ¥= flu), x(0) =0, f° uTu(eyde <1} ©) 
For an overapproximation, find positive definite V(-) such that 


VV(x) > f(x,u) <ulu. 


FV(x(H)) Satu + V(x(T)) V(x) < fu ulat <4 


V(x(T)) < 
Therefore, x € Rr pees V(x) < 1,ie., the level set contains the 
reachable set: 
Rrc {x: V(x) = I}. 
Example: 
X= Ax+Bu V(x) =x" Px. 
Find P = P™ > 0 such that 
x7(ATP + PA)x +x! PBu +u'B! Px < ulu 


or, written more compactly: 


: 


This means 


A'P+PA PB 
BTp 0 


A'P+PA PB 
BTPp —] 
which is a LMI in P. 


Safety Certification 


Given an “unsafe” set U, show that 
RrNuU=@. 


The level set overapproximations above can be used to prove safety: 


A 
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Look for a V with the additional property thatx € U > V(x) > 1. 
Such functions V are sometimes called “barrier functions.” 


Example: Suppose the unsafe set is the half-space: 
U={x : atx >1}. 


Let V(x) = x? Px. From the S-procedure, if there exists T > 0 such 
that 
(x? Px=1)=t(a'x=1) > 0, (7) 


then x € U > V(x) >1. 
Exercise: Show that (7) is equivalent to: P > aa’. 


Thus, the LMIs in the previous examples can be augmented with this 
additional constraint to certify safety. 


